Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/e42800-c8c7-4599-b1fd-88a74d039f7f/1/rPn4-L4agPzEJfG3yfoZsxvjcY0.roa
File: rPn4-L4agPzEJfG3yfoZsxvjcY0.roa (raw, json)
Hash identifier: b2nuakyK7cKjyB3ZvGiGa28nscaAi9c80EPXY8TCmHg=
Subject key identifier: AC:F9:F8:F8:BE:1A:80:FC:C4:25:F1:B7:C9:FA:19:B3:1B:E3:71:8D
Certificate issuer: /CN=9fc6e87709ae9d0447940f23d754df8ba8175b0d
Certificate serial: 04DE0326
Authority key identifier: 9F:C6:E8:77:09:AE:9D:04:47:94:0F:23:D7:54:DF:8B:A8:17:5B:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n8bodwmunQRHlA8j11Tfi6gXWw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/e42800-c8c7-4599-b1fd-88a74d039f7f/1/rPn4-L4agPzEJfG3yfoZsxvjcY0.roa
Signing time: Sat 01 Jan 2022 04:01:21 +0000
ROA not before: Sat 01 Jan 2022 04:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213146
IP address blocks: 94.158.223.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81658662 (0x4de0326)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fc6e87709ae9d0447940f23d754df8ba8175b0d
Validity
Not Before: Jan 1 04:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=acf9f8f8be1a80fcc425f1b7c9fa19b31be3718d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:13:27:5f:37:4b:15:ac:9c:50:3b:57:9d:7c:
9c:05:41:07:03:8f:e2:62:21:89:10:f8:de:e3:52:
f3:98:ec:50:d7:d2:86:57:08:f6:5c:2d:38:e3:ac:
dd:61:34:c6:8d:07:19:1c:f7:e6:28:93:70:23:ab:
84:2b:0b:38:5d:81:e5:73:6a:ff:c8:e6:2b:a4:68:
e1:8a:c2:87:dc:e1:6f:99:93:0c:23:7b:b5:65:24:
fa:9a:e9:77:1f:21:1e:51:89:91:c3:c1:a5:78:f1:
fe:81:6e:8a:b8:d6:0c:34:f9:73:e6:0e:71:89:cb:
7c:78:16:93:90:81:a5:1b:ea:4c:c5:79:b2:8e:93:
00:f2:b8:0e:86:76:1e:34:d5:1f:fb:50:39:3d:92:
21:2b:85:7b:e0:bb:d3:04:87:1b:7c:a5:79:d5:78:
e6:2d:24:d1:c6:bb:0f:0d:5b:77:72:02:0c:99:a2:
d7:8a:65:82:e3:aa:da:06:b3:26:52:c9:a3:1a:b7:
84:ca:eb:66:61:d8:dd:7a:f1:22:cf:d8:1d:5f:e0:
bf:77:ba:08:dc:33:20:ff:5f:27:f3:c5:de:4c:e5:
24:83:06:6a:b4:1f:8e:e4:fd:80:00:9d:50:88:a7:
a9:17:f0:ce:b5:82:cf:ab:1e:51:6b:59:a5:7e:05:
63:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F9:F8:F8:BE:1A:80:FC:C4:25:F1:B7:C9:FA:19:B3:1B:E3:71:8D
X509v3 Authority Key Identifier:
keyid:9F:C6:E8:77:09:AE:9D:04:47:94:0F:23:D7:54:DF:8B:A8:17:5B:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n8bodwmunQRHlA8j11Tfi6gXWw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/e42800-c8c7-4599-b1fd-88a74d039f7f/1/rPn4-L4agPzEJfG3yfoZsxvjcY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/e42800-c8c7-4599-b1fd-88a74d039f7f/1/n8bodwmunQRHlA8j11Tfi6gXWw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.158.223.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:2f:06:23:ee:1d:bc:48:14:33:0a:d4:89:bd:bd:aa:b3:b6:
ab:29:89:1d:60:7f:45:66:5a:47:9a:8f:e5:37:f9:23:6f:9c:
27:21:8c:34:b8:11:3a:5f:09:47:8e:ec:41:00:4c:e0:d5:aa:
0f:5a:47:be:43:ab:4c:f0:53:47:c7:bb:6f:4a:42:26:c6:12:
df:ed:9a:6c:5d:b2:d7:74:58:e9:a8:21:a8:58:4b:8e:e2:90:
e0:11:cf:10:15:fc:31:c5:a7:e6:7d:8e:47:3d:c8:bb:c9:52:
bb:59:df:44:6c:53:8e:fa:29:5b:f2:dc:5b:73:6c:e1:c5:1f:
a7:88:85:58:b5:b7:f4:c5:95:fb:9b:3f:31:0e:70:4f:6f:53:
b5:f9:69:2d:21:49:c3:a4:b2:20:51:bf:1a:48:f0:cd:b2:fb:
d5:27:c6:45:5b:b6:cb:be:d5:d7:26:ba:e6:46:f5:7d:24:a0:
ef:7f:97:f5:9e:2b:52:cc:16:07:f7:0c:ee:47:36:2c:d9:7f:
74:b8:77:62:85:1a:5a:46:a5:7b:e4:46:e1:f8:91:61:52:b7:
00:a3:bd:e0:9f:70:1d:ba:50:4d:d1:1e:b5:e0:8f:86:9b:f9:
a5:ba:50:95:60:29:98:c6:3c:cf:4a:3c:74:a6:d3:d1:fb:5f:
fc:f3:08:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:34 2023 by rpki-client on console-fra.rpki-client.org